What You’ll Do
+ Execute monthly FedRAMP Continuous Monitoring activities, ensuring timely and accurate completion of deliverables
+ Maintain and update Plans of Action and Milestones (POA&Ms), including tracking remediation progress and validating closure
+ Review and analyze vulnerability scan results (e.g., Nessus) and assist with prioritization and escalation
+ Maintain an accurate, up-to-date view of vulnerability status across the environment
+ Track vulnerabilities through the full lifecycle: identification, validation, remediation, and closure
+ Monitor and report on aging vulnerabilities and SLA adherence
+ Ensure consistency between scan results, ticketing systems (e.g., ServiceNow), and POA&M records


Operational Visibility & Monitoring
+ Maintain continuous operational visibility into the security posture of FedRAMP systems, including vulnerabilities, assets, and control status
+ Validate that security-relevant data (scan results, lo...